C++ Code Review with LGTM

Tree-sitter's C++ grammar parses modern C++ (17/20/23) including templates, concepts, ranges, modules, coroutines, lambdas, and structured bindings. Older C++98/03 also parses cleanly.

Per-PR: PageRank ranks symbols related to the diff (classes, free functions, template specializations), context attached to agent prompts. The Bugs agent for C++ focuses on the undefined-behavior, memory-safety, and concurrency failure modes that C++'s power enables.

C++ is the language where the gap between 'compiles fine' and 'works correctly' is widest. LGTM's value is in flagging the patterns that compile fine but bite at runtime — buffer overruns, lifetime violations, signed-int overflow, etc.

Dangling references / use-after-move. `auto& ref = vec[0]; vec.push_back(x); use(ref);` — push_back may reallocate, invalidating ref. The Bugs agent reads vector/string member calls following reference acquisition.

Missing RAII. `FILE* fp = fopen(...);` without a ScopeGuard or RAII wrapper. C++ has unique_ptr / file streams / scope_exit — recommend modern equivalent.

Signed integer overflow. `int a = INT_MAX; int b = a + 1;` — UB. The agent flags arithmetic on signed types where overflow is reasonably possible.

Smart pointer misuse. `shared_ptr` where `unique_ptr` would do (cost). `unique_ptr` passed by value when reference would be sufficient (copy of unique_ptr is illegal — caught at compile time, but the design smell is worth flagging earlier).

Concurrency hazards. `std::mutex` locked across blocking I/O. `std::atomic` used wrong (e.g., compound operations needing CAS). Static locals in multi-threaded init (post-C++11 standardized but easy to misuse).

Implicit narrowing conversions. `int x = 1000000000000;` — silently truncates. Modern compilers warn; the agent surfaces the design issue (use auto + appropriate literal suffix).

Modern C++ syntax is the hardest grammar to parse in tree-sitter's catalog. The C++ grammar is robust for 99% of real code but has edge cases (heavily-template-metaprogrammed Boost-style code) where ERROR nodes appear.

When tree-sitter produces ERROR nodes in a file, LGTM falls back to diff-only review for that file. Most files parse cleanly; the exceptions are usually meta-programming-heavy library code, not application logic.

Preprocessor directives are visible as tokens but not expanded. Macro-heavy code is reviewable as written; what the macro expands to isn't reasoned about.

Build systems: CMakeLists.txt is recognised for project layout. Bazel BUILD files supported via tree-sitter's separate grammar.

Install the LGTM GitHub App. Index time: 1-3 minutes for typical C++ projects, longer for templates-heavy code.

Header + source split: .h / .hpp / .cc / .cpp / .cxx all indexed. Header-only libraries reviewed too.

Generated code (protoc .pb.cc, Qt moc_*.cpp) auto-excluded by header heuristics.

Modern (C++17+) projects get fuller review because more idioms are recognised. Pre-C++11 projects work but the agents have less to suggest beyond classical patterns.